While CimTrak can help you achieve compliance with a number of PCI DSS security standard requirements, two sections, PCI 10.5.5 and PCI 11.5, specifically call for a file integrity monitoring solution such as CimTrak to be deployed.
Use file-integrity-monitoring or change-detection software on logs to ensure that existing log data cannot be changed without generating alerts (although new data being added should not cause an alert).
Deploy a change-detection mechanism (for example, file-integrity monitoring tools) to alert personnel to unauthorized modification of critical system files, configuration files, or content files; and configure the software to perform critical file comparisons at least weekly.
Compliance with PCI DSS should be viewed as a temporary condition, a “snapshot” of your systems at a given moment. PCI Compliance is subject to change at any moment. Much to their chagrin, many organizations have learned this lesson the hard way.
PCI solutions often fall short because while they can show that the environment is compliant at one point in time, they have no ability to assure that the compliance in continual. Once you have employed various tools to get your PCI environment into a known good state, the key is to do everything possible to detect and prevent changes that will alter that state.
Learn how to automatically check a large number of critical configurations on your systems for PCI compliance with CimTrak’s Compliance Module
The goal of PCI 10.5.5 and PCI 11.5 is to ensure the integrity of critical logs from the PCI environment and changes to files do not allow a breach of PCI data. While PCI 11.5 calls for file-integrity monitoring software such as CimTrak to look for file changes at least weekly, the true integrity of your PCI environment requires much more frequent monitoring. CimTrak provides real-time file integrity monitoring (FIM) without taxing your system resources.
This allows you to exceed the minimum frequency for file-integrity monitoring called for in PCI 11.5 and gives you added peace of mind that your PCI environment is secure and in a state of constant integrity. PCI 11.5 also discusses the importance of regularly monitoring the output of your file integrity monitoring (FIM) solution. CimTrak makes it easy by providing complete reporting on changes, as well as critical configurations.
CimTrak covers a broad array of systems in PCI environments, including servers, network devices, critical workstations, and even point of sale (POS) systems. Whether you’re a small retailer or a large payment processor, CimTrak can help.
If you’ve downloaded the PCI DSS Compliance Checklist, you will be able to see how File Integrity Monitoring can fit into your compliance strategy. We recommend getting a Demo of CimTrak so you can see exactly how it accomplishes critical elements of the PCI DSS Compliance Standards.